|
223901
|
7.7 |
HIGH
Network
|
cisco
|
telepresence_advanced_media_gateway
|
A vulnerability in the web application of Cisco TelePresence Advanced Media Gateway could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. T…
|
CWE-20
Improper Input Validation
|
CVE-2019-15966
|
2024-11-21 13:29 |
2019-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223902
|
7.2 |
HIGH
Network
|
sonatype
|
nexus_repository_manager
|
There is an OS Command Injection in Nexus Repository Manager <= 2.14.14 (bypass CVE-2019-5475) that could allow an attacker a Remote Code Execution (RCE). All instances using CommandLineExecutor.java…
|
CWE-78
OS Command
|
CVE-2019-15588
|
2024-11-21 13:29 |
2019-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223903
|
7.2 |
HIGH
Network
|
fortiguard
|
fortiextender_firmware
|
An OS command injection vulnerability in FortiExtender 4.1.0 to 4.1.1, 4.0.0 and below under CLI admin console may allow unauthorized administrators to run arbitrary system level commands via special…
|
CWE-78
OS Command
|
CVE-2019-15710
|
2024-11-21 13:29 |
2019-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223904
|
7.5 |
HIGH
Network
|
rdesktop
|
rdesktop
|
RDesktop version 1.8.4 contains multiple out-of-bound access read vulnerabilities in its code, which results in a denial of service (DoS) condition. This attack appear to be exploitable via network c…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-15682
|
2024-11-21 13:29 |
2019-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223905
|
9.8 |
CRITICAL
Network
|
turbovnc
|
turbovnc
|
TurboVNC server code contains stack buffer overflow vulnerability in commit prior to cea98166008301e614e0d36776bf9435a536136e. This could possibly result into remote code execution, since stack frame…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-15683
|
2024-11-21 13:29 |
2019-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223906
|
7.5 |
HIGH
Network
|
libvnc_project
canonical
debian
siemens
|
libvncserver
ubuntu_linux
debian_linux
simatic_itc1500_firmware
simatic_itc1500_pro_firmware
simatic_itc1900_firmware
simatic_itc1900_pro_firmware
simatic_itc2200_firmware
sim…
|
LibVNC commit before d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a contains a memory leak (CWE-655) in VNC server code, which allow an attacker to read stack memory and can be abused for information discl…
|
CWE-665
Improper Initialization
|
CVE-2019-15681
|
2024-11-21 13:29 |
2019-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223907
|
7.5 |
HIGH
Network
|
tightvnc
|
tightvnc
|
TightVNC code version 1.3.10 contains null pointer dereference in HandleZlibBPP function, which results Denial of System (DoS). This attack appear to be exploitable via network connectivity.
|
CWE-476
NULL Pointer Dereference
|
CVE-2019-15680
|
2024-11-21 13:29 |
2019-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223908
|
9.8 |
CRITICAL
Network
|
tightvnc
|
tightvnc
|
TightVNC code version 1.3.10 contains heap buffer overflow in InitialiseRFBConnection function, which can potentially result code execution. This attack appear to be exploitable via network connectiv…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-15679
|
2024-11-21 13:29 |
2019-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223909
|
9.8 |
CRITICAL
Network
|
tightvnc
|
tightvnc
|
TightVNC code version 1.3.10 contains heap buffer overflow in rfbServerCutText handler, which can potentially result code execution.. This attack appear to be exploitable via network connectivity.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-15678
|
2024-11-21 13:29 |
2019-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223910
|
9.8 |
CRITICAL
Network
|
craftcms
|
craft_cms
|
In Craft CMS through 3.1.7, the elevated session password prompt was not being rate limited like normal login forms, leading to the possibility of a brute force attempt on them.
|
CWE-640
Weak Password Recovery Mechanism for Forgotten Password
|
CVE-2019-15929
|
2024-11-21 13:29 |
2019-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
